Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: dw4pRkn9p6wFSQFnE53cWBdCq2c6mJF9tU1MEwACcBU=
Subject key identifier: 65:E9:A2:51:F7:F7:30:EB:74:C2:43:15:61:93:06:89:B8:23:2A:C7
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019EB6FC2701E86CBF2E6C11FCE6ACFCFC7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0FD9
Signing time: Thu 11 Jun 2026 14:00:38 +0000
Manifest this update: Thu 11 Jun 2026 14:00:38 +0000
Manifest next update: Fri 12 Jun 2026 14:00:38 +0000
Files and hashes: 1: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: 7+p5gWK2ZPdwkgnkS0wTvB5UU4U7OnpMhBv+0wby7fg=)
2: abxz-YS2pIcWJysLZsLURj3wFjE.roa (hash: v8u8I3KyfjrBtGFxRTuhA7B6RHsn+uH/zjkzCl303+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fc:27:01:e8:6c:bf:2e:6c:11:fc:e6:ac:fc:fc:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Jun 11 14:00:38 2026 GMT
Not After : Jun 12 14:00:38 2026 GMT
Subject: CN=65e9a251f7f730eb74c2431561930689b8232ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:90:4f:cd:7b:e7:af:c0:ec:b1:0c:e2:02:25:
d5:9d:ff:19:be:de:41:b3:90:36:27:7f:d0:eb:f6:
87:4e:b5:9f:91:74:52:14:9d:ed:a3:d1:16:78:62:
de:7b:94:17:cb:e9:36:8d:fc:88:30:23:60:4f:f8:
21:49:50:f9:99:89:0b:0e:05:d9:e0:e0:23:a3:a0:
b7:c0:d7:a9:c5:26:fb:d2:09:0b:fd:79:13:f5:aa:
b8:c3:97:42:c8:ae:5e:53:ae:f6:7c:4c:9e:61:ae:
ac:08:97:0c:2e:32:af:05:c5:d2:ba:f4:3f:86:11:
05:8a:85:c7:77:ff:e8:d9:32:b4:8a:9e:73:2f:7e:
ff:ca:8d:71:bb:12:cd:6c:b4:ec:12:47:82:8e:b6:
74:45:00:17:b9:57:0e:3c:17:be:ac:32:a1:b6:4f:
c7:d8:61:3a:cc:b1:f6:39:43:23:97:46:b3:94:54:
f8:c7:ea:07:bb:59:ce:e4:68:d2:c7:b7:d3:f3:37:
d7:b8:d9:ec:db:cc:42:2d:15:43:49:55:a0:68:03:
f9:5f:86:07:1a:44:11:3f:70:6c:dd:b4:91:7f:56:
af:b3:2a:b5:7d:7e:d6:20:32:f6:65:d8:63:5e:79:
33:b6:48:8a:06:58:60:90:00:e9:22:45:c0:f0:e3:
26:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E9:A2:51:F7:F7:30:EB:74:C2:43:15:61:93:06:89:B8:23:2A:C7
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:59:62:1e:f8:a5:cf:3e:11:15:c1:dd:e6:1e:c9:ad:a2:76:
4a:7a:d5:0b:6e:78:41:c5:c8:6a:80:44:5c:db:62:7f:3f:d9:
31:96:ec:78:cc:a3:89:ce:b1:6c:5c:9e:87:05:a5:ff:cc:6a:
c9:bd:ff:40:b1:31:3d:e3:bc:f1:f7:ae:dc:6e:7c:44:36:87:
ac:3b:74:e8:34:ca:62:2c:bf:c4:ec:9f:06:3f:6f:09:a0:c3:
39:53:18:05:04:0e:24:55:70:a0:33:67:5c:aa:a0:9b:8c:71:
60:cb:c9:cc:4a:a1:d7:b5:c5:9a:04:31:df:61:b4:f5:fb:30:
24:58:d7:64:8b:76:ad:1a:3a:57:a4:fc:b4:da:53:51:91:37:
f0:6e:d4:37:11:6f:77:58:04:b2:45:6d:a7:d1:e8:a4:79:cb:
76:fb:83:f8:0a:57:77:d3:69:2b:da:82:91:99:68:f3:2b:09:
f6:b8:c9:b1:50:f2:74:f4:3a:75:e3:98:3b:7d:c3:25:d0:c7:
46:0f:af:96:27:29:a1:cc:ec:2e:29:13:82:76:6a:ac:e7:44:
fc:e7:55:8b:3c:82:ee:97:1c:12:3b:e2:5b:ca:7c:bd:25:b9:
6f:0d:71:1b:63:4a:19:f1:4f:ba:92:07:fc:ae:a4:b4:40:0e:
19:bc:ed:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 18:58:55 2026 by rpki-client